$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.mft File: r_zmN5iBZebFG_v-vRKD1REkAZA.mft (raw, json) Hash identifier: 4NWAO3+tlrl1ZcXc8rIOjZRre+MGKQHFChY/j9WVlcI= Subject key identifier: 48:22:2D:E4:55:55:D6:9C:C1:6D:92:BC:D2:CE:05:A1:BA:AA:5A:F0 Authority key identifier: AF:FC:E6:37:98:81:65:E6:C5:1B:FB:FE:BD:12:83:D5:11:24:01:90 Certificate issuer: /CN=A91E4468/serialNumber=AFFCE637988165E6C51BFBFEBD1283D511240190 Certificate serial: 0154 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_zmN5iBZebFG_v-vRKD1REkAZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.mft Manifest number: 014C Signing time: Sat 23 Aug 2025 04:27:17 +0000 Manifest this update: Sat 23 Aug 2025 04:27:16 +0000 Manifest next update: Sat 30 Aug 2025 04:27:16 +0000 Files and hashes: 1: r_zmN5iBZebFG_v-vRKD1REkAZA.crl (hash: Pv8jalmy6CQqr5hEd0VmGERcfjUFsOA4taYjhkXkANY=) 2: C531DD12226F11EF8D24AD63C4F9AE02.roa (hash: a2/vehSWDoff6mLTg7VEADcM0ey8iDfcQQZxJYEqkDM=) 3: C608133C226F11EF8D24AD63C4F9AE02.roa (hash: GATUqbNDhKaVb/i1ZjCIO1rgwevFVCyWk8Ts83izVL4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.crl rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_zmN5iBZebFG_v-vRKD1REkAZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:27:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 340 (0x154) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4468, serialNumber=AFFCE637988165E6C51BFBFEBD1283D511240190 Validity Not Before: Aug 23 04:27:16 2025 GMT Not After : Aug 30 04:27:16 2025 GMT Subject: CN=68a94324-5e4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:59:f2:06:83:bd:80:8c:81:b8:de:fa:4c:56: 97:44:89:bd:73:80:00:76:77:fc:ff:0b:cf:2b:e9: ae:16:42:bf:d8:83:98:16:1e:f2:7f:ab:84:9d:f3: ec:83:96:e4:68:c7:df:9c:df:be:16:fe:4a:e6:d0: 58:6e:a2:50:aa:41:24:d6:5c:ad:d2:b6:a9:8f:57: 21:8c:cc:58:7d:d9:29:f1:2a:7a:ff:93:00:0d:b1: 0e:16:d3:b6:15:37:40:27:bb:78:2f:72:b0:ce:12: 48:ce:65:27:ce:8b:0a:26:f8:0d:3a:9e:4b:da:19: 73:1b:7a:e8:a1:2b:bf:70:3d:11:db:3c:33:b2:9e: 93:c9:3b:c1:c7:90:6d:44:9d:7d:4b:1d:2a:05:fd: 5d:c6:ce:d5:20:c7:ab:f1:35:a4:6c:11:e6:46:7b: 67:c5:f1:20:9f:96:34:d4:92:89:b5:e9:0c:b5:00: 18:9c:14:62:08:18:88:9c:81:58:58:a8:d2:19:20: 7c:b5:17:59:35:2a:d7:9d:09:49:57:ca:19:31:42: 84:96:e1:0b:48:8e:6e:80:31:5c:c7:de:01:05:ea: f4:c0:76:2f:23:2f:01:90:6d:76:43:4a:ed:14:88: 58:66:03:1a:73:54:c8:20:60:30:12:35:a1:d1:d3: 88:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:22:2D:E4:55:55:D6:9C:C1:6D:92:BC:D2:CE:05:A1:BA:AA:5A:F0 X509v3 Authority Key Identifier: keyid:AF:FC:E6:37:98:81:65:E6:C5:1B:FB:FE:BD:12:83:D5:11:24:01:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_zmN5iBZebFG_v-vRKD1REkAZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:16:4d:4e:28:b7:2c:d1:d9:75:df:cd:58:91:28:d1:65:a2: 44:30:f9:68:ad:c5:f2:e5:84:f7:eb:cf:26:45:09:2c:db:4b: 7a:99:ae:cc:d8:f5:56:ab:cb:89:9d:84:47:83:0c:b1:28:ba: 04:1e:b8:b7:a6:7a:42:2c:cb:51:53:6c:ef:8c:26:73:73:fa: ed:5d:4b:ed:e6:0a:bf:02:bc:d5:d7:6f:fe:0a:f2:1b:72:f9: 13:03:c5:f5:0f:b3:8f:87:48:46:ec:fb:56:2b:6e:88:80:e5: f5:1e:27:b2:89:05:4f:a1:c9:4a:97:a2:7c:72:82:fb:2f:50: 59:53:1f:7c:c3:20:e6:fb:11:ea:aa:71:d8:74:ac:e5:1f:c0: f6:c8:71:a8:f3:f5:0a:9e:63:a6:f6:84:36:2b:7e:99:2a:79: b2:12:0e:2a:9b:3b:85:db:c7:84:83:60:7a:e0:00:45:84:70: 5f:c8:36:55:fc:62:42:f5:27:8a:4c:4a:26:57:1a:76:8e:43: 62:5b:32:28:3f:a7:6b:51:26:d7:cc:09:71:fc:f2:35:9e:e3: 0e:b9:d6:be:a3:8a:ea:e6:56:35:f0:0d:ae:75:28:a9:a6:9e: f1:96:85:0c:2e:96:e1:90:b9:70:2d:99:c0:84:b7:53:47:7e: 00:8e:9e:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ0NjgxMTAvBgNVBAUTKEFGRkNFNjM3OTg4MTY1RTZDNTFCRkJGRUJEMTI4M0Q1 MTEyNDAxOTAwHhcNMjUwODIzMDQyNzE2WhcNMjUwODMwMDQyNzE2WjAYMRYwFAYD VQQDEw02OGE5NDMyNC01ZTRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv1nyBoO9gIyBuN76TFaXRIm9c4AAdnf8/wvPK+muFkK/2IOYFh7yf6uEnfPs g5bkaMffnN++Fv5K5tBYbqJQqkEk1lyt0rapj1chjMxYfdkp8Sp6/5MADbEOFtO2 FTdAJ7t4L3KwzhJIzmUnzosKJvgNOp5L2hlzG3rooSu/cD0R2zwzsp6TyTvBx5Bt RJ19Sx0qBf1dxs7VIMer8TWkbBHmRntnxfEgn5Y01JKJtekMtQAYnBRiCBiInIFY WKjSGSB8tRdZNSrXnQlJV8oZMUKEluELSI5ugDFcx94BBer0wHYvIy8BkG12Q0rt FIhYZgMac1TIIGAwEjWh0dOIewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEgiLeRV VdacwW2SvNLOBaG6qlrwMB8GA1UdIwQYMBaAFK/85jeYgWXmxRv7/r0Sg9URJAGQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDQ2OC84Mjc1MjRFODhF RTUxMUVFQTJFRUREMTJDNEY5QUUwMi9yX3ptTjVpQlplYkZHX3YtdlJLRDFSRWtB WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Jfem1ONWlCWmViRkdfdi12UktEMVJFa0FaQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDQ2OC84Mjc1MjRFODhFRTUxMUVFQTJFRUREMTJDNEY5QUUwMi9yX3ptTjVpQlpl YkZHX3YtdlJLRDFSRWtBWkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCFk1OKLcs0dl1381YkSjRZaJEMPlorcXy5YT3688mRQks20t6ma7M 2PVWq8uJnYRHgwyxKLoEHri3pnpCLMtRU2zvjCZzc/rtXUvt5gq/ArzV12/+CvIb cvkTA8X1D7OPh0hG7PtWK26IgOX1HieyiQVPoclKl6J8coL7L1BZUx98wyDm+xHq qnHYdKzlH8D2yHGo8/UKnmOm9oQ2K36ZKnmyEg4qmzuF28eEg2B64ABFhHBfyDZV /GJC9SeKTEomVxp2jkNiWzIoP6drUSbXzAlx/PI1nuMOuda+o4rq5lY18A2udSip pp7xloUMLpbhkLlwLZnAhLdTR34Ajp5s -----END CERTIFICATE-----Generated at Sat Aug 23 22:35:59 2025 by rpki-client